Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/DyM4miXpT18oy299HqFi8cKpNow.roa
File: DyM4miXpT18oy299HqFi8cKpNow.roa (raw, json)
Hash identifier: +FpSO+NvoxQDfrslmAJkqpEbyXtd/bavCxItZrVeZe0=
Subject key identifier: 0F:23:38:9A:25:E9:4F:5F:28:CB:6F:7D:1E:A1:62:F1:C2:A9:36:8C
Certificate issuer: /CN=fe8199e8345567d8516b788fe2e1d397e27c73a4
Certificate serial: 018288D0D1EC557C01B62B2F5A09038A3CF2
Authority key identifier: FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/DyM4miXpT18oy299HqFi8cKpNow.roa
Signing time: Wed 10 Aug 2022 17:32:42 +0000
ROA not before: Wed 10 Aug 2022 17:32:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54203
IP address blocks: 176.67.85.0/24 maxlen: 24
176.67.83.0/24 maxlen: 24
176.67.80.0/23 maxlen: 23
176.67.86.0/24 maxlen: 24
185.91.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:d0:d1:ec:55:7c:01:b6:2b:2f:5a:09:03:8a:3c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8199e8345567d8516b788fe2e1d397e27c73a4
Validity
Not Before: Aug 10 17:32:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f23389a25e94f5f28cb6f7d1ea162f1c2a9368c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:c8:17:66:97:9c:aa:48:fc:22:39:de:e8:
94:b8:5a:db:ef:8b:30:55:ab:2a:6b:ce:32:06:56:
f9:7f:4e:7a:61:28:cb:58:80:ce:d9:61:72:30:41:
12:ce:bf:05:4f:4c:c5:b6:f4:12:dc:a3:22:e9:8a:
07:7e:e4:c8:ad:60:fc:5c:55:6f:dc:f4:4f:b2:f0:
bc:d5:5e:0d:5f:5a:36:a6:e9:47:9c:07:06:19:1c:
22:a1:cb:95:56:79:d8:6e:7a:17:e6:ef:79:73:54:
17:21:f2:3c:81:fd:29:97:69:d2:69:33:cf:b2:8e:
ba:ef:25:a9:7c:f9:0f:4c:3e:39:4d:7d:b4:39:59:
6f:61:3e:1b:f0:cf:f4:e5:46:db:a9:82:b6:3c:f1:
d5:8c:03:6c:46:8e:d8:80:27:83:31:66:d8:e8:ed:
a3:dc:92:e8:a7:9a:d5:e0:8d:ae:52:89:a2:42:d8:
e6:f8:da:06:26:bb:1e:85:95:64:6c:33:c4:9e:15:
a5:07:4f:ba:97:2b:19:6e:73:de:fa:fd:bf:55:ef:
bf:cb:82:fe:6f:a8:c0:ac:84:f8:35:70:c8:c3:af:
74:ca:43:a1:79:24:75:7a:2a:89:43:7e:fb:50:28:
6d:ab:ec:4c:ac:ee:51:6c:ee:fc:c0:41:51:e4:1d:
1d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:23:38:9A:25:E9:4F:5F:28:CB:6F:7D:1E:A1:62:F1:C2:A9:36:8C
X509v3 Authority Key Identifier:
keyid:FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/DyM4miXpT18oy299HqFi8cKpNow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.67.80.0/23
176.67.83.0/24
176.67.85.0-176.67.86.255
185.91.120.0/22
Signature Algorithm: sha256WithRSAEncryption
88:80:1d:98:75:66:be:8f:d3:58:71:f4:eb:8c:5e:84:2b:98:
bd:54:e6:b2:55:52:dd:54:f6:08:9a:91:b3:06:6e:ac:b3:e6:
4b:fe:81:8e:c9:b1:f9:58:a3:a5:7e:9b:1c:a8:99:eb:95:15:
cd:21:65:50:00:aa:4c:cf:8e:bf:ed:fd:f2:29:e4:9e:9a:f1:
ba:23:ba:d1:42:99:0e:b8:af:2f:d9:56:c9:81:2e:13:52:29:
f5:a5:60:ca:64:0f:5f:63:b9:93:11:5d:1f:da:5e:03:9e:76:
3f:e5:b0:ac:63:fd:d9:c6:55:f7:3f:05:4c:d7:94:50:b3:f2:
41:98:30:a9:0c:05:c6:14:7a:7c:f3:c5:af:8f:df:eb:ce:c6:
dd:4b:c8:0c:93:e8:4c:29:61:5a:29:85:d3:5b:ae:9d:05:b9:
a1:7b:0b:66:bb:77:7b:14:8c:35:4b:d5:0f:c8:f2:1e:67:fd:
3c:4b:71:ae:22:14:f5:5a:83:89:3c:c0:69:13:35:44:c8:24:
46:30:7a:60:27:5b:52:3f:47:bd:8a:0c:bb:f7:c1:d3:4c:96:
f2:49:7f:3f:ac:ac:db:90:94:bb:48:37:2a:2a:68:0c:88:a9:
ca:d5:88:0f:08:36:4a:1b:21:a4:0a:2d:50:e2:b7:b4:3e:65:
79:65:9a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:38 2024 by rpki-client on console-ams.rpki-client.org